Fortra Sheds Light on GoAnywhere MFT Zero-Day Exploit Used in Ransomware Attacks – LinkCyb Team
Apr 20, 2023Ravie LakshmananRansomware / Cyber Attack Fortra, the company behind Cobalt Strike, shed light on a zero-day remote code execution (RCE) vulnerability in its GoAnywhere MFT tool that has come under active exploitation by ransomware actors to steal sensitive data. The high-severity flaw, tracked as CVE-2023-0669 (CVSS score: 7.2), concerns a case of pre-authenticated […]
Lazarus Group Adds Linux Malware to Arsenal in Operation Dream Job
Apr 20, 2023Ravie LakshmananLinux / Cyber Attack The notorious North Korea-aligned state-sponsored actor known as the Lazarus Group has been attributed to a new campaign aimed at Linux users. The attacks are part of a persistent and long-running activity tracked under the name Operation Dream Job, ESET said in a new report published today. The […]
Two Critical Flaws Found in Alibaba Cloud’s PostgreSQL Databases
Apr 20, 2023Ravie LakshmananCloud Security / Vulnerability A chain of two critical flaws has been disclosed in Alibaba Cloud’s ApsaraDB RDS for PostgreSQL and AnalyticDB for PostgreSQL that could be exploited to breach tenant isolation protections and access sensitive data belonging to other customers. “The vulnerabilities potentially allowed unauthorized access to Alibaba Cloud customers’ PostgreSQL […]
Cisco and VMware Release Security Updates to Patch Critical Flaws in their Products
Apr 21, 2023Ravie LakshmananSoftware Update / Network Security Cisco and VMware have released security updates to address critical security flaws in their products that could be exploited by malicious actors to execute arbitrary code on affected systems. The most severe of the vulnerabilities is a command injection flaw in Cisco Industrial Network Director (CVE-2023-20036, CVSS […]
Daggerfly Cyberattack Campaign Hits African Telecom Services Providers – post by LinkCyb
Apr 20, 2023Ravie LakshmananCyber Attack / Malware Telecommunication services providers in Africa are the target of a new campaign orchestrated by a China-linked threat actor at least since November 2022. The intrusions have been pinned on a hacking crew tracked by Symantec as Daggerfly, and which is also monitored by the broader cybersecurity community as […]
NSO Group Used 3 Zero-Click iPhone Exploits Against Human Rights Defenders – post by LinkCyb
Israeli spyware maker NSO Group deployed at least three novel “zero-click” exploits against iPhones in 2022 to infiltrate defenses erected by Apple and deploy Pegasus, according to the latest findings from Citizen Lab. “NSO Group customers widely deployed at least three iOS 15 and iOS 16 zero-click exploit chains against civil society targets around the […]
New analysis highlights strength of Ukraine's defence against “unprecedented” Russian offensive – post by LinkCyb
Report from the European Cyber Conflict Research Initiative (ECCRI) gives new insights into the role of cyber criminals and political hacktivists in a conflict, and critical questions around industry support to Ukraine’s cyber resilience.
How to Spot a Potential Application Security Champion in Your Organization – post by LinkCyb
If you are a leader in a software development organization, you know your software is constantly under threat. Attacks can come from all angles: bad design, insecure third parties, poor code, misconfiguration -the list goes on. As such, it is essential to have at least one, if not several, security champions dedicated to ensuring your […]
Google TAG Warns of Russian Hackers Conducting Phishing Attacks in Ukraine – post by LinkCyb
Apr 19, 2023Ravie LakshmananCyber War / Cyber Attack Elite hackers associated with Russia’s military intelligence service have been linked to large-volume phishing campaigns aimed at hundreds of users in Ukraine to extract intelligence and influence public discourse related to the war. Google’s Threat Analysis Group (TAG), which is monitoring the activities of the actor under […]
Blind Eagle Cyber Espionage Group Strikes Again: New Attack Chain Uncovered – post by LinkCyb
Apr 19, 2023Ravie LakshmananCyber Threat / Malware The cyber espionage actor tracked as Blind Eagle has been linked to a new multi-stage attack chain that leads to the deployment of the NjRAT remote access trojan on compromised systems. “The group is known for using a variety of sophisticated attack techniques, including custom malware, social engineering […]